*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 3
* of the License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License in GPL.txt for more details.
*/
define('IN_PONEPASTE', 1);
require_once('includes/common.php');
require_once('includes/functions.php');
// UTF-8
header('Content-Type: text/html; charset=utf-8');
$date = date('jS F Y');
$ip = $_SERVER['REMOTE_ADDR'];
// If username defined in URL, then check if it's exists in database. If invalid, redirect to main site.
$user_username = trim($_SESSION['username']);
if (isset($_GET['user'])) {
$profile_username = trim($_GET['user']);
if (!existingUser($conn, $profile_username)) {
// Invalid username
header("Location: ../error.php");
die();
}
} else {
// No access to user.php
header("Location: ../error.php");
die();
}
$p_title = $profile_username . $lang['user_public_pastes']; // "Username's Public Pastes"
// Favorite Counts
$query = $conn->prepare(
'SELECT COUNT(*) FROM pins INNER JOIN pastes ON pins.f_paste = pastes.id WHERE pastes.member = ?'
);
$query->execute([$profile_username]);
$total_pfav = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare(
'SELECT COUNT(*) FROM pins INNER JOIN pastes ON pins.f_paste = pastes.id WHERE pins.m_fav = ?'
);
$query->execute([$profile_username]);
$total_yfav = intval($query->fetch(PDO::FETCH_NUM)[0]);
// Badges
$query = $conn->prepare('SELECT badge FROM users WHERE username = ?');
$query->execute([$profile_username]);
$profile_badge = match ($query->fetch()['badge']) {
1 => '
',
2 => '
',
3 => '
',
default => '',
};
$query = $conn->prepare('SELECT COUNT(*) FROM pastes WHERE member = ?');
$query->execute([$profile_username]);
$profile_total_pastes = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare('SELECT COUNT(*) FROM pastes WHERE member = ? AND visible = 0');
$query->execute([$profile_username]);
$profile_total_public = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare('SELECT COUNT(*) FROM pastes WHERE member = ? AND visible = 1');
$query->execute([$profile_username]);
$profile_total_unlisted = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare('SELECT COUNT(*) FROM pastes WHERE member = ? AND visible = 2');
$query->execute([$profile_username]);
$profile_total_private = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare('SELECT SUM(views) FROM pastes WHERE member = ?');
$query->execute([$profile_username]);
$profile_total_paste_views = intval($query->fetch(PDO::FETCH_NUM)[0]);
$query = $conn->prepare('SELECT date FROM users WHERE username = ?');
$query->execute([$profile_username]);
$profile_join_date = $query->fetch()['date'];
updatePageViews($conn);
if (isset($_GET['del'])) {
if ($_SESSION['token']) { // Prevent unauthorized deletes
$paste_id = intval(trim($_GET['id']));
$query = $conn->prepare('SELECT member FROM pastes WHERE id = ?');
$query->execute([$paste_id]);
$result = $query->fetch();
if (empty($result) || $result['member'] !== $user_username) {
$error = $lang['delete_error_invalid']; // Does not exist or not paste owner
} else {
$query = $conn->prepare('DELETE FROM pastes WHERE id = ?');
$query->execute([$paste_id]);
$success = $lang['pastedeleted']; // "Paste deleted successfully."
}
} else {
$error = $lang['not_logged_in']; // Must be logged in to do that
}
}
// Theme
require_once('theme/' . $default_theme . '/header.php');
require_once('theme/' . $default_theme . '/user_profile.php');
require_once('theme/' . $default_theme . '/footer.php');